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CONTROL IN A DATA ACCESS TRANSPORT SERVICF 

Field Of The Invention 

The present invention relates generally to data communications 
network access and, more particularly, to Internet Protocol based services, 
dial-in data network access, data network transport. Virtual Private Dial-in 
Networks, and ISDN BRI and PRI data connections. 

Background Of The Invention 

Current data dial-in services permit end-users to connect their 
Personal Computers (PCs) and routers to a Data Service Provider (DSP). The 
DSP provides end-users with access to the Global Internet, and, in the case of 
Corporate DSPs, access to corporate intranets. 

Traditionally, connectivity between end-user PCs and a DSP is 
achieved through the use of a PC modem, which sends packetized data by 
modulating an aiialog signal. The modem uses the Public Switched Telephone 
Network (PSTN) to achieve connectivity to a corresponding DSP-owned 
modem in a modem pool, which de-modulates the signal and routes the 
packetized data to the appropriate destination, based on the control 
information embedded in the data packet. Alternatively, connectivity may be 
achieved via ISDN BRI or PRI access facilities. End-user authentication, 
authorization, and accounting is performed by the ISP via standard techniques 
such as clear text password authentication. Password Authentication Protocol 
(PAP), or Challenge Handshake Authentication Protocol (CHAP). Once an 
end-user has been authenticated as a valid user, the end-user's data packets 
are sent to the appropriate destination (depending on the data packet's 
destination address), allowing the end-user to use data networking 
applications such as telnet, electronic mail. File Trsinsf er Protocol (FTP), and 
Hyper-Text Markup Language (HTML) applications. 

This arrangement has led to some problems. Network studies 
have shown that a typical end-user dial-in data session lasts for twenty 
minutes, and that some sessions remain active for hours or days. These long 
duration data calls can cause congestion of the PSTN, which is engineered for 
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voice calls Which are typicaUy three to five minutes in duration PSTN 
congestion results in added cost to LECs in regrading voice switches, and 
provisionmg additional inter-office facilities (tOF) to handle the added load 
between voice switches. 



From the DSP perspective, dial-in data services have created a 
different set of problems. Hie cost of maintaining modem pools contributes a 
large percentage of a DSFs operating costs. AdditionaUy, increasing modem 
pool capaaty requires new access lines (either single access lines or 
multiplexed facilities such as Primary Rate Interface ISDN or channelized Tl) 
which require significant lead-time for the LEC to instaU, making it difficult ' 
for a DSP to react quickly to increasing market needs in a timely fashion. 

As a solution to these problems. Local Exchange Carriers (LECs) 
and some Large DSPs have begun to investigate alternative connectivity 
options aUowing end-users to access the internet or corporate intranet These 
service providers create a Data Access Transport Service (DATS) through 
which DSPs, who subscribe to the DATS, outsource their ISDN Basic Rate 
hiterface (BRI) and analog modem pools to an LEC or DSP (hereinafter for 
sunplkity, referred to as "the LEC"), who maintain a large modem pool to be 
shared by all subscribed DSPs. Thus, a DATS allows the DSPs to operate a 
Virtual Private Dial-in Network (VPDN), where calls and virtual resources to 
the said DSP remain private and confidential, even though the physical 
facilities are shared among multiple DSPs. 

DATS calls, which can be recognized from the dialed number by 
the onginatmg switch, can be immediately diverted to the DAIS equipment 
via durect trunking f acUities, thus removing long duration data calls from 
interoffice facilities, tandem and egress switches. Additionally, LECs can also 
implement fi:ont-end devices that recognize end-user data calls and divert the 
caUs to DATS equipment via direct trunking facilities, thus removing such 
calls firom the originating switch as weU, effectively removing PSTN 
congestion due to long duration data calls. 

DATS tariffs can be based on the number of logical modem ports 
subscribed to (which defines tiie maximum number of simultaneous end-users 
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who can access that particular DSP via DATS), and the Wide Area Network 
(WAN) link(s) that provide connectivity between the DSP data equipment and 
the DATS data equipment (which defines the maximum instantzuieoxis 
aggregate bandwidth available to all end-users connected to that particular 
DSP via DATS). End-user AAA (Authentication, Authorization, and 
Accoimting) can be performed by the LEC on behalf of the DSP, or 
alternatively, the LEC can perform only partial authentication and forward on 
the information to the DSP via tunneling protocols such as Layer 2 
Forwarding (L2F), Point-to-Point Txmneling Protocol (PPTP), or Layer 2 
Txmnelling Protocol (L2TP), 

The DATS does effectively remove the PSTN congestion issue, 
and can provide DSPs a more cost-effective arrangement than managing their 
own modem pool (the subscribed DSP benefits from the economy of scale 
provided by the LEC's DATS large modem pool). However, some issues arise 
with this implementation. First, the LEC providing the DATS must ensure 
that it can guarantee to its subscribed DSPs a pre-defined quality of service. 
That is, the LEC needs to guarantee that a particular DSP will have access to 
the number of logical ports it has subscribed to (with an agreed blocking 
ratio). To meet this requirement, the LEC must be able to enforce a given 
DSP's service quota so that, during periods of high demand, a DSP will not 
use more resources, or ports, than it has subscribed to, which results in lost 
revenue to the LEC, and may negatively impact other DSPs' service quality. 
This is a challenging requirement, since it involves a real-time view of all 
simultaneous users connected to each DSP, and the ability to refuse 
connectivity to a particular DSP (should a connection request exceed that 
DSP's service quota). 

Anodier issue with DATS relates to the distribution of calls over 
multiple DSP Network Gateways (NGs). If tunneling protocols are used, a 
DSP may interface with the DATS via more tiian one Network Gateway, 
which terminates the tunnelling protocol. In such cases, it is importcmt that 
the DATS system maintain an even call distribution among the Network 
Gateways, such that each end-user who is connected to the DSP is provided 
with the same quality of service (bandwidth, delay, etc.) as other cormected 
end-users. Additionally, a DSP may install Network Gateways of different 
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piocessing power, such that it becomes important that the DAIS system 

^mvolves a real-tune view of all simultaneous users connected to each DSP's 
rr^"^' '"^^^ *° "^"^ ""^ *° Network 

h^^^hX^e^r^^^ 

An important service ofiering fer ISDN BRI end-users is the 
abJ.^ to support Multilink Point-to-Poi^ Protocol CMLP), which binds the 

ttps of effechve throughput. In order for the MLP to function, however, aU 
-oc«.ed MLP segments (known as a MLP bundle) must be sen. to the «u„e 
Network c^te«,ay when a tunnelling p^tocol is used. However, the PSTN 
may route different segments of a MLP bundle to diverse DATS facilities, to 
different pieces of equipment (hat route calls to Network Gateways 
mdependenfly. While this is an inherent characteristic of a DAIS system that 
^proves reliabiHty, it abo makes MLP «K«Una.ion a challenge. Lrsom 
ISDN termmal adaptors can send data in a 56 kbps format (as opposed to the 
BDn I^ 'l''^*^"—»^^*"8ehigherraLfor 64kbps 
^1^' ^ ^ •'ATS equipment receiving 

fte call would mterpret the call (based on the ISDN signalling message) as an 

"^^^ " iniplementation that can indicate that an 
mcommg ISDN caU is of the 56 kbps data format, so that it can treat the caU 
appropriately. 



torn, • u '^"^''-'"^"''SP^'W^^-b^ibe^toaDATB doesnotneed 
to phys-cany manage a modem pool, it loses access to vital operations 
mfonnadon it needs for activities such as customer service, marketing, 
^ubleshootmg, forecasting, and engineering. Also, some DSPs may require 
■^^-'r^'T^ (*"^ ««nP'e. changing the DSFs nuler of 

r^H . ^ ""^ ""'^ attributes in 

reattune, prov.de real-time access to service information for troubleshooting 
pmposes, as weU as provide a repository of past system performance, for 
DATS performance analysis. Since the DATS may be quite large (on the order 
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of tens of thotisands of ports), it is important for LEC operations efficiency that 
this information be kept in a central, easily accessed location. Also, it is 
sometimes necessary for the UEC and/ or DSP to alter the administrative state 
of a DATS network element, i.e. to disallow new calls from being routed 
through certain network elements (for example, if software is to be upgraded), 
while at the same time allowing existing calls already assigned to the said 
device to remain unaffected (such calls would be removed when the end-user 
terminates the call). This poses a challenge for the LEC, as today's DATS 
implementations involve the distributed installation of multiple modem 
termination units (a modem termination unit is also known as a Network 
Access Server (NAS), which can typically support up to 100 multiple end-user 
data sessions). 

Traditionally, centralized control and monitoring of data 
equipment is implemented using network management applications that 
employ standard management protocols such as Simple Network 
Management Protocol (SNMP). The management applications, however, were 
not designed for real-time service control applications, where the response 
time must be sufficiently low so as not to exceed either PSTN voice call timers, 
or end-user call response expectations. 

Summary Of The Invention 

It is an object of the present invention to provide a new and 
improved data access transport service. 

One aspect of the invention provides a data access transport 
system comprising a plurality of network access servers and a network 
controller coxmected to the network access servers. Each network access 
server is operable: to send a connection setup request to the network controller 
on receipt of a data call before answering the data call, the connection setup 
request specifying a data service provider to which a connection is requested; 
to receive a connection setup response from the network controller, the 
connection setup response indicating whether the requested connection is to 
be completed; to respond to a connection setup response indicating that the 
connection is to be completed by answering the data call and initiating a 
connection to the specified data service provider; and to respond to a 
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connection setup response indicating that the connection is not to be ' 
completed by initiating a busy indication. The network controUer is operable- 
to receive a connection setup request from any of the network access servers- " 
to determine whether a quantity of network resources currently used by the 
data service provider specified in the connection setup request is less than an 
service quota assigned to the data service provider; and to send a connection 
setup response to the network access server which sent the connection setup 
request, the connection setup response indicating that the requested 
connection is to be completed when the quantity of network resources 
currently used by the data service provider is less than the assigned service 
quota and the connection setup response indicating the requested connection 
IS not to be completed when the quantity of network resources currently used 
by the data service provider is not less than the assigned service quota. 

Another aspect of the invention provides a network controller 
for use m a data access transport system comprising a pluraUty of network 
access servers connected to the network controUer. The network controUer 
comprises: means for receiving a connection setup request from any of the 
network access servers; means for determining whether a quantity of network 
resources currently used by the data service provider specified in the 
connection setup request is less than a service quota assigned to the data 
service provider; and means for sending a connection setup response to the 
network access server which sent the connection setup request, the connection 
setup response indicating tiiat the requested connection is to be completed 
when the quantity of network resources currentiy used by the data service 
provider is less than the assigned service quota and the connection setiip 
response indicating the requested connection is not to be completed when the 
quantity of network resources currentiy used by the data service provider is 
not less than the assigned service quota. 

These aspects of the invention enable tiie network contiroUer to 
enforce service quotas for each of the data service providers served by the data 
access tiransport service so tiiat network access servers of tfie data access 
tiransport service can be shared to realize economies of scale 
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The network controller may further comprise: means for 
maintaining a cotmt of active calls to each data service provider served by the 
data access transport system; means for maintaining a coimt of active calls 
served by each network gateway served by the data access transport system; 
and means for selecting a network gateway for completing a connection to a 
data service provider based on the coxmts of active calls served by each 
network gateway connected to the data service provider; the mecins for 
sending a connection setup response being responsive to the means for 
selecting a network gateway to send a connection setup response specifying 
the selected network gateway. 

These features enable the network controller to distribute data 
calls across multiple network gateways so that each end user receives 
approximately ttie same level of service. 

The network controller may comprise means for maintaining a 
record of tunnels currentiy coimected between network access servers and 
network gateways. The means for selecting a network gateway may be 
operable to select a network gateway based on the coimts of active calls served 
by each network gateway and the record of tunnels currently connected 
between network access servers and network gateways. 

These features enable the network controller to select a network 
gateway so as to use an existing tunnel instead of a less busy network gateway 
to which no tuimel is currently established. This can reduce timneling 
protocol overhead. 

The network controller may comprise means for recognizing call 
setup requests corresponding to segments of a MLP call. The means for 
selecting a network gateway for completing a connection to a data service 
provider may be responsive to the means for recognizing call setup requests 
corresponding to segments of a MLP call to select the same network gateway 
for all segments of a MLP call. 

These features enable the network controller to ensure that MLP 
calls are properly hsmdled by the data access transport service. 
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The network controUer may comprise means for recognizing can 
setup requests coiresponding to data calk requiring 56 kbps service Hie 
means for sending a connection setup response may be responsive to the 
means for recognizing caU setup requests corresponding to data caUs 
requu:mg 56 kbps service to send a connection setup response indicating that 
56 kbps service is required. 

These features enable the network controller to ensure that 56 
kbps calls are properly handled by the data access transport service. 

The network controller may comprise: means for deriving 
operational data from at least one of connection setup requests, comiection 
sehip responses, connection release requests, connection release 
aclaxowledgements and error conditions detected by the network controller 
and means for recordmg at least some of the derived operational data. 

These features enable the network controller to collect in real 
toie operational data needed by the data service providers and the data access 
transport service providers to manage their services effectively without the 
need for costly poUing of network components. 

The network controller may comprise means for flagging 
network gateways as disabled. The means for selecting a network^Lay 
may respond to the means for flagging network gateways as disabled by not 
selecting any network gateway currently flagged as disabled. 

The network controller may also comprise means for flagging 

groupsofdirectorynumbersasdisabled,eachdirectorynumbergroup 
comprising at least one directory number. The means for sending a 
connection setup response may respond to the means for flagging directory 

rZecT°"'' " '^f ^"""^^^^ '^^^ responsT^dicating L 

connections are not to be completed in response to connection setup requests 
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The network controller may also comprise means for flagging 
network access servers as disabled. The means for sending a connection setup 
response may respond to the means for flagging network access servers as 
disabled to send connection setup responses indicating that connections are 
not to be completed in response to connection setup requests sent by network 
access servers which are flagged as disabled. 

These f eatxires enable the administrators of the data access 
transport service to assign and enforce administrative states on individual 
network components. 

Another aspect of the invention provides a network access server 
for use in a data access transport system comprising a network controller 
connected to the network access server. The network access server comprises: 
means for sending a connection setup request to the network controller on 
receipt of a data call before answering the data call^ the connection setup 
request specifying a data service provider to which a connection is requested; 
means for receiving a connection setup response from fl\e network controller, 
the connection setup response indicating whether the requested connection is 
to be completed; means for answering the data call and initiating a connection 
to the specified data service provider in response to a connection setup 
response indicating that the connection is to be completed; and means for 
initiating a busy indication in response to a connection setup response 
indicating that the connection is not to be completed. 

The network access server may further comprise means 
responsive to a signal indicating that the network access server is disabled to 
send a signal to an access network indicating that access channels of the 
network access server are unavailable for use. 

The network access server may also comprise means responsive 
to a signal indicating that the network access server is re-enabled to send a 
signal to an access network indicating that access channels of the network 
access server are available for use. 



wo 98/54868 

PCT/CA98/00436 

- 10 - 

Yet another aspect of the invention provides a method for 
operating a data access transport system comprising a plurality of network 
access servers and a network controller connected to the network access 
servers^ The method comprises: sending a connection setup request from a 
network access server to the network controller on receipt of a data call before 
answenng the data caU, the connection setup request specifying a data service 
provider to whxch a connection is requested; determining at the network 
controller whether a quantity of network resources currently used by the data 
service provider specified in the comxection setup request is less than a service 
quota assigned to the data service provider; sending a connection setup 
response from the network controller to the network access server which sent 
the connection setup request, the comxection setup response indicating that the 
requested connection is to be completed when the quantity of network 
resources currently used by the data service provider is less than the assigned 
service quota and the connection setup response indicating the requested 
connection is not to be completed when the quantity of network resources 
currently used by the data service provider is not less than the assigned 
service quo^; responding at the network access server to a connec^n setup 
response mdicating that the connection is to be completed by answering the 
data c^ and mitiating a connection to the specified data service provider; and 
respondmg at the network access server to a connection setup response 
Mcato ^ to be completed by initiating a busy 

Still another aspect of the invention provides a method for 
operatmg a network controller for use in a data access transport system 
compnsing a plurality of network access servers connected to the network 

ZTZ^Z'^T'' """^""^ "^""^^ ^ ^^^P -^--t from 

any of Ae network access servers; determining whether the quantity of 

cCSo'T" ^^""^ P--'^- «P-^ed in the 

connection setup request has a airrent number of active calls less than a 

s«vice quota assigned to the data service provider; and sending a connection 

setup response to the network access server which sent the connection setup 
request the connection setup response indicating that the requested 
connection is to be completed when the quantity of network resources 
currently used by the data service provider is less than the assigned service 



wo 98/54868 



PCT/CA98/00436 



- 11 ^ 

quota and the connection setup response indicating the requested connection 
is not to be completed when the quantity of network resources currently used 
by the data service provider is not less than the assigned service quota. 

Anotiier aspect of the invention provides a method for operating 
a network access server in a data access transport system comprising a 
network controller connected to the network access server. The method 
comprises: sending a connection setup request to the network controller on 
receipt of a data call before answering the data call, the connection setup 
request specifying a data service provider to which a connection is requested; 
receiving a connection setup response from the network controller, the 
connection setup response indicating whether the requested connection is to 
be completed; answering the data call and initiating a connection to the 
specified data service provider in response to a connection setup response 
indicating that ttie connection is to be completed; and initiating a busy 
indication in response to a connection setup response indicating that ttie 
connection is not to be completed. 

An embodiment of the invention provides a system whereby 
analog modem and/ or ISDN BFI data calls to a DATS are processed in real 
time in order to enforce service quotas, process requirements based on data 
call service type, balance calls across DSP terminating devices, support MLP 
and 56 kbps features for ISDN, and provide access to real-time network status 
information. The invention also provides the ability to invoke administrative 
states on specific network elements involved in a Data Access Transport 
Service (DATS), wherein the control is applied centrally. 

The embodiment provides a method for centralized real-time 
control of a distributed DATS system. The mettiod includes steps for 
determining the number of active call resources assigned to a DSP and for 
limiting the number of simultaneous call resources (assigned to a particular 
DSP) to a pre-configured value, where call resources may be the number of 
call sessions, the bandwidth utilized by each call, the aggregate bandwidth 
used by the caSL sessions, etc. The method also includes steps to distribute 
calls to a DSFs multiple Network Gateways so that a pre-determined relative 
load on each Network Gateway is maintained, and so that all segments of a 
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MLP bundle are routed to a common Network Gateway. The method also 
allows for the distinguishing between analog modem calls and ISDN data 
caUs, and between ISDN 64 kbps and 56 kbps data call formats. The method 
also provides a repository of centrally stored service configuration data, as 
weU as historical caU and event logs and operational measurements 
AdditionaUy, the method provides a method by which a central directory of 
mf ormation may be maintained against DSPs, and against individual DAIS 
system compor.ents,aUowing this information to be transmits 
DATS system elements (such as the NAS, the Network Gateway, Management 
Systems, etc.). FinaUy, the method provides the abiHty to perform Da4 
system element auditing, to ensure that DATS elements are operating as 
expected. ° 



In operation of the embodiment, a telephone switching system 
routes an analog modem or ISDN BRI call to a Network Access Server (N AS) 

which the telephone system recognizes as a DAIS number. In addition to 
routag the call to the NAS, the telephone system also provides the NAS with 
tixe dialed number, as well as the calling party's number (via standard 
telephony signalling techniques such as Primary Rate Interface (PRI) 
signalling or Common Channel Signalling number 7). Upon completion of the 
routing of the call at the NAS, the NAS then sends a comiection setup request 
to a Network Controller (NC) ), including information such as the dialed 
number, call type (analog modem or ISDN data), and a unique caU identifier 
1!;^'°'' via a logical signalling path between the NAS 
and the NC. The NC matches the dialed number against stored DSP 
information, and, based on the information, determines if the call should be 
completed (based on the number of active calls to the DSP) The NC then 
signals the NAS with an indication that either authorizes or refuses the call 
^e decision to accept or refuse the call is based on the available resources in 
the DATS network, both physical and logical (for example, the number of 
active calls to the associated DSP, or bandwidth available on affected links, or 
processmg/call handling capacity remaining on individual components) and 
the validity of the requested resources (for example, the dialed number). If the 
call IS authorized, the Network Gateway to which the data call wiU be routed 
IS mdicated to the NAS (based on Network Gateway load balancing and MLP 
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handling algorithms), along with additional service^related inf ormatibn (such 
as an indication that a call originally detected by the N AS as an analog modem 
call is actually a 56 kbps ISDN data call), and an active call count for the DSP is 
incremented. The NAS then completes the call to the indicated Network 
Gateway using appropriate end-user AAA, control, and communication 
protocols. Upon termination of the data call (either by end-user or DSP 
action), the NAS signals to the NC that the call has been terminated, including 
information such as the termination cause, send and receive data rates, and 
tunnel protocol information (if a tunnel protocol was used in completing the 
call). This information is stored at the NC for later analysis or troubleshooting 
purposes. Additionally, the NC can also terminate a call if required, in which 
case an indication is sent to the NAS instructing it to relecise the call. 

In one example, an LEC may implement a DATS system in order 
to relieve Public Switched Telephone System (PSTN) congestion, as well as 
provide value-added transport services to DSPs. In such a scenario, the LEC 
would install a number of N ASs with connectivity to the PSTN, creating a 
large modem pool, which is shared by DSPs which subscribe to the DATS. 
Note that while described as a modem pool, the installation of NASs may also 
support ISDN data calls, or other data access protocols such as ADSL. Each 
NAS has connectivity to each DSP via logical data network connections such 
as those provided via X.25, Frame Relay or ATM. Each DSP subscribing to the 
DATS requests a number of logical modem or ISDN data ports, as well as the 
bandwidth of the network connection into the DATS system. Note that the 
number of ports determines the total mmiber of simultaneous calls (or ISDN 
B-channels in the case of ISDN data calls) to the DSP via the DATS. In its 
efforts to ensure that each DSP will have available to it the resources 
subscribed to, the LEC will install a NC, thus allowing the LEC to limit calls to 
a particular DSP. Analog modem and ISDN data call limits (or service quotas) 
can be enforced separately, or can be combined. Additionally, if the DSP 
requires multiple Network Gateways, the LEC can also distribute calls across 
the multiple Network Gateways, and can ensure tiiat individual segments of a 
MLP bimdle are routed to a common Network Gateway. The LEC would 
access the historical logs and operational measurements stored on the NC in 
order to forecast DATS growth, identify potential points of congestion, 
troubleshoot network failures, or trace the cause of customer complaints. 
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Brief Desm ption Of Th^ nr=...»^^ .^ 

Embodiments of the invention are described below with 
reference to accompanying drawings in which- 

D AI5 systemf^' ' " ' -presentation of a previously proposed 

^'^^2 is a schematic representation of a DAIS system 
mdudmgaNQ in accordance with an embodimentof the present inventi^^^^ 

DATSsystemom^rer'''"^'^"^^"^^^^ 
Detailed Dpfirrrp ^ir^i^ 

o„tfi«^ Refentag to Figure 1, an end-user's personal computer (PC) 
outfitted «,tt. eiAer a modem or an ISDN Terminal Adaptor (TA) 1 is 
^^ted™ ^ subscriberl^p 2 to a central telephone switchi-lg office 

^L^^ M 1" t°r^ °' '^^"y '-"em switching 
^Sterns) to a Network Access Server (NAS) 5 via a CO trunk 4. The NAS S 
contains fte Digital Signal Processing dxcuitry (not shown) required for the 
support of analog modem calls, as well as the HDLC and signaUing processor 
(also not shown) required for ISDN data caU support THe ^5 Z 
supports end-user authentication schemes such as PAP, CHAP, and RADIUS- 
Imk- ayer protocol processing such as Serial Link Interface Protocol (SUP), ' 

S^rtvertr'T' ~' - 2 Forwarlg 

(L2F), Layer 2 tunnellmg protocol (L2TP); and, data networking protocols such 
as T^nsport Control Protocol (TCP), User Datagram Protocol ^P),Tt^ 
P~tocol (IP); « weU as link-Uyer protocols such as Ethernet. Frame 
X^, or Asyn<4ro„ous Transfer Mode (ATM). The NAS 5 connects to the 

TV^ ' ™ ^ '^'^ "«*"0* 7. Tl>e NAS 5 connects to the 

da^rk 7 vu a NAS Data Network hiterface 6, using protocoU such as 

D^M^ rr°^ ' 7 ™ the DSP 

ntt H " ' ' - E*emet. Token Rin^ Fiber 

Z^f r^?^ r"""^ ("o' shown) in order to achieve 

compahbdity between interfaces 6 and 8. The Network Gateway 9 provides 
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the tunnelling protocol termination on the DSP side. The Network Gateway 9 
is connected to other DSP devices and resources 11 such as information 
servers, or an internet backbone gateway, which provides coimectivity to the 
public Internet Backbone. 

Referring to Figure 2, reference numerals 1 to 11 refer to the 
same correspondirig elements as were described above with reference to 
Figure 1. Figure 2 also includes a Network Controller (NC) 12, and a NC 
Mar\agement Terminal 14. The NC 12 is connected to the N AS 5 via the data 
network 7. The NC 12 is connected to the data network 7 via the Network 
Controller Data Network Interface 13, using protocols such as Ethernet, Token 
Ring, Fiber Distributed Data Interface (FDDI), Frame Relay, or ATM. The data 
network 7 provides the necessary protocol interworking (not shown) in order 
to achieve compatibility between interfaces 6 and 8, and between interfaces 6 
and 13. 

The NAS 5 and the NC 12 support the signalling protocol 
required to exchzuige data call control information. LEC operations persoimel 
may configure NC service via a NC Management TerminzJ 15, which is 
coimected to the NC 12 via a NC Management Terminal Interface 14. The NC 
Management Terminal 15 can be either an ASCII terminal capable of sending 
command-line interface commands to the NC 12, or, alternatively, can also be 
a workstation running SNMP-based management applications. The NC 
Management Terminal Interface 14 can be either a direct connection, such as 
RS-232, or can utilize Local Area Network (LAN) and Wide Area Network 
(WAN) technologies such as Ethernet, Frame Relay, or Asynchronous Transfer 
Mode, allowing the NC Management Terminal to be located remotely from 
theNC. 

Figures 3a and 3b illustrate the operation of the DATS system 
described above with reference to Figure 2. A call destined to a subscribed 
DSP is completed through the central office 3 to the NAS 5. Of necessity, such 
calls include signsilling of the DSP directory number from the CO 10 to the 
NAS 5. Referring to Figure 2, the call is origirmted by an end-user via a PC 1 
outfitted with either an axudog modem or an ISDN Basic Rate Interface (BRI) 
Terminal Adaptor (TA). The number dialed by the end-user 1 is sent via Dual 
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T^Mula-Freque^^ PTMF) or puke sign^g «, fte CO 3. where Ae 
dialed number b recognized as a DATS-associaled number and routed 
TOm^y to a NAS 5 Via a CO trunk 4, providing the dialed number and 
«fl^par.y number to theNASSvia signalling depending on theCOmmk4 

■n<e NAS 5 in turn sends a connection setup request to the NC 12 
TnC 'i^^P"*-' --^^ by bo* the NAS 5 and 

to tb^ Mr information Aat authenticates the NAS 

to the NC, and the NC to the NAS (for example using NAS/NC identifleT^ 
shared secrets, both of which may be encrypted). PrLided in th^ r^^^ 
-tup «,uest message is the dialed number, the calling party number 

ta^^i Other call resources such as requested bandwidth ly also be 

dialpH „ J^il*^ ^ ''^'"•y °' NAS identifier and the 

dialed number mdicated in the connection setup request message If .he 
u^ormauon is determined fo be invalid, that is, if eiLr the NaI id^Mer or 
*e dialed number do not match the list of NAS identifiets and dialed numtes 
™ : H fo the NAS 5 With a connection Zp 

response mdicatrng a response code that the NAS 5 interprets as a refusal 

^fore::::^:"''""'''''^''^^"--^^'""'^^'^'^- 

"*''^°"^«°"'-«^«ved by the NC 12 in the connection setun 
requestmessageisvaIid.theNC12checksthenumberofactivecall 
'esourc^s) currently logged against the dialed number (or dialed number 
Which the dialed number is a member). A caU Loun:e may^ 
Phy^cal « logical entity required to complete a DATS call (for example the 

bandwidU, for all calls to a DSP). H the number of active call resources) T 
equal to the call resource li„it(s) stored against the dialed number ^d^ed 

number group, the NC 12 repUes fo the NAS 5 With a connection setup 
response mdicating a response code that the NAS 5 interprets as a refusal. 



wo 98/54868 



PCT/CA98/00436 



- 17 - 

which results in an indication to the end user 1 that all circuits are bu^y. If the 
number of active calls is less dian the call limit associated against the dialed 
number or dialed number group, the call processing proceeds. 

5 If a timnelling protocol is used by the NAS, the NC 12 then 

chooses a destination Network Gateway from a list of Network Gateways 
(associated against the dialed nimiber or dialed nimiber group) stored in the 
NC 12 

10 If the incoming call is a segment of a MLP bimdle, then the 

appropriate Network Gateway is chosen to support MLP requirements. If the 
call is not associated with a MLP bundle. Network Gateway selection is based 
on the current number of active calls on each Network Gateway 9, and a 
Network Gateway relative loading factor stored against each Network 

1 5 Gateway listed on the NC 12. 

If a Network Gateway's administrative state (stored at the NC) 
has been set to ''disabled", the NC does not consider the Network Gateway in 
the load balancing algorithm* 

20 

In order to prevent mesh tunnel connectivity between N ASs 5 
and Network Gateways 9 (resulting in excessive tunnel protocol overhead), 
the Network Gateway selection can also favour a Network Gateway 9 to 
which the N AS 5 in question already has a tunnel established. This tunnel 
2 5 favouring is also known as "Txmnel Affinity" . 

The NC 12 then responds with a connection request response 
with a response code that the N AS 5 interprets as authorization to complete 
the data call, and the NC active call coimts against the dialed number (or 

30 dialed number group) and Network Gateway (if applicable) are incremented. 
Also included in the connection request is the Network Gateway identifier to 
which tiie call is to be routed, its data network address, and any additional 
service information the NAS 5 may need to complete the call. Once 
authorized to continue with the data call setup, the NAS 5 will begin to 

35 process the analog modem signal or ISDN data frames (depending on the call 
type), and will commence end-user authentication protocols. 
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If no tunnelling protocol is used by the N AS 5, the NAS 5 
performs all AAA, and once the end-user 1 is authorized, the end-user 1 is 
assigned a network address (if required), after which end-user originated 
packets can be routed to the intended address, and end-user defined packets 
can be routed to the end-user 1. 

If a tunnelling protocol is to be used, the NAS 5 sets up a tunnel 
Of one does not ahready exist), and AAA information is forwarded on to the 
DSP authentication device according to the tunnelling protocol methods. 

If a network failure condition exists, such that the NAS 5 is 
urmble to open a tunnel to the Network Gateway 9 indicated by the NC 12, the 
NAS 5 sends an indication to the NC 12 requesting a new Network Gateway 
aUocation which wiU result in a response from the NC 12 with a new Network 
Gateway 9 and the NC 12 marks the failed Network Gateway administrative 
status as disabled", which will prevent further calls from being routed to the 
railed Network Gateway. 

Once the end-user 1 is authorized, the end-user 1 is assigned a 
network address (if required), after which end-user originated packets can be 
routed to the intended address, and end-user defined packets can be routed to 
the end-user. Once the end-user 1 has been authenticated, the NAS 5 sends a 
connection confirmation indication, which includes information relating to 
tbe data call, such as initial send/receive data rate. Network Gateway 
Identifier, and tunnel identifier (if required). If at any time end-user 
auAorization foils, the end user 1 is disconnected according to the associated 

i^e NC 12 with the appropriate termination code and associated comiection 
xdenbfier, and the NC active call counts against the dialed number (or dialed 
number group) and Network Gateway (if appUcable) are decremented. 

nQP ^ ^^^^^^'^^^^^^'^s if the end-user lends a session, if the 
DSP ends a session, or if the NC 12 forces a session to be released (as a result 

1"^^^''^'"^"'^'''°^''''^^ If 
the data call is to be released as a result of end-user 1 or DSP action, the NAS 5 



wo 98/54868 



PCT/CA98/00436 



- 19 - 

sends the NC 12 a connection release indication with an appropriate and 
mutually understood cause code and connection identifier, to which the NC 12 
responds with an acknowledgement message, and the NC active call coimts 
against the dialed number (or dialed nimiber group) and Network Gateway (if 
applicable) are decremented. If the data call is released as a result of an LEC 
personnel command to the NC 12, the NC 12 sends the NAS 5 a connection 
release indication with an appropriate and mutually xmderstood cause code 
and connection identifier, to which the NAS 5 responds with an 
acknowledgement message, and the NC active call coimts against the dialed 
number (or dialed number group) and Network Gateway (if applicable) are 
decremented. If, at any time, a network failure occurs such that multiple end- 
user sessions are lost and/ or tunnel connectivity is lost, the NAS 5 wiU send 
multiple connection release indications witii an appropriate and mutually 
understood cause code and connection identifier, to which the NAS 5 
responds with corresponding acknowledgement messages, and the NC active 
call coimts against the associated dialed mmiber(s) (or dialed nimiber group(s) 
) and Network Gateway(s) (if applicable) are decremented. 

The NC Management Terminal 14 may be used to assign and 
enforce administrative states on individual DATS system elements, for 
example any NAS 5, Network Gateway 9 or any directory number or directory 
nimiber group configuration stored on the NC 12. If the administrative state 
of a Network Gateway 9 is set to "disabled'', the NC 12 will not route any 
subsequent calls to that Network Gateway 9, nor will the NC 12 consider that 
Network Gateway's current load in load bcdancing algorithms, while existing 
calls previously routed to that Network Gateway 9 will remain unaffected. If 
the admiiustrative state of a directory number or a group of directory numbers 
is set to "disabled", the NC 12 will refused requests for connection to that 
directory ntmiber or any directory number in that group of directory numbers 
from any NAS 5, while existing calls to that directory nimiber or any directory 
number in that group of directory numbers remain unaffected. 

If the administrative state of a NAS 5 is set to "disabled", the NC 
12 will refuse cormection setup requests sent by that NAS 5 while existing calls 
previously routed through that NAS 5 will remain unaffected. In addition, 
when a NAS 5 is flagged as "disabled", the NC 12 may signal the flagged NAS 
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S to busy out all PRI channels terminating on that NAS 5, so that the PSTN wiU 
not route calls on those PRI channels. If the NC Management Terminal 14 is 
used to r«„able the NAS 5, the NC 12 may signal the re^bled NAS 5. 
causmg fte re^bled NAS 5 to signal the PSTN that its PRI B-channels are 
n™dable for use so that the PSIN will resume routing calls on those PRI 

"^t^iytae a NAS-generaled connection setup request is 

gI^T ' " Network 

Gateway that has been marked at the NC 12 as being administratively 
disabled, the NC 12 replies to the NAS 5 with a connection setup res^nse 
mdicating a response code that the NAS 5 interprets as a refusal, whL results 
m an error mdication (i.e. fast busy tone or disconnect) to the end user 1. 

M *^ ^'^ ^ ^t^t^ indication to 

one or more NAS 5. to which the NAS 5 responds with a status confirm 
message (u«ng tt« aforementioned signalling protocol). The status confirm 

Tl^ NC 12 uses ths mformation to determine if the information stored in the 
NC12«accurato. If a« information is not accurato(i.e. some unexpected new 

ta n,?'' . """^ "^"^ NC 12 updates 

Its mformation, and may send another stahis indication to the NAS 5 
requesting more detailed information. 

All connection sehip requests, connection setup responses 
conneaon release requests, connection release acknowledgements, stat^^ 
mdacations, slahis confirmations, many error conditions and statistics are 
logged or counted for post analysis purposes. In addition, aU current (active) 

can mformation « Stored at the NC 12 for real-time querying and 
troubleshooting. ^ / & 

h.r.i. ^ ^^*'^^"^^'^^^^°^*'°l^dmomtoring features described 
hereuv and variations of the same, may weD be enhanced. For example such 
enhancements include time-of^ay dependent DSP service quotas, appl cXn 
to newer access technologies such as ADSL, implementation of redu^dalf 
NCs, distnbutmg multiple NCs to increase scaleability, supporting 
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mechanised DSP management interfaces for real-time querying of D ATS- 
related statistics by DSP personnel, and incorporation of odier signalling 
protocols such as common channel signalling system number 7 (CCS7) and IN 
interworking. 

While Figure 2 shows only one instance of each of the subscriber 
PC 1, the subscriber loop 2, the CO 3, the CO trunk 4, N AS 5, the N AS data 
network interface 6, the DSP data network interface 8, the network gateway 9 
and the DSP server 11, it is to be xinderstood that in most applications, there 
will be a plurality of each of these network components. The embodiment of 
the invention described above enables a common network controller 12 to 
manage plural NASs 5 shared by plural DSPs 11 using plural network 
gateways 9 to realize economies of scale. 

Various modifications and changes could be made to the 
invention witiiout departing from the spirit and scope thereof. It should 
therefore be imderstood that die claims are not to be considered as being 
limited to the precise embodiments set forth above, in the absence of specific 
limitations directed to each embodiment. 
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WE CLAIM: 

1. A data access transport system comprising a plurality of 
network access servers and a network controller connected to the network 
access servers; 

each network access server being operable: 

to send a connection setup request to the network controller on 
receipt of a data call before answering the data call, the connection setup 
request specifying a data service provider to which a connection is requested; 

to receive a connection setup response from the network 
controller, the connection setup response indicating whether the requested 
coimection is to be completed; 

to respond to a connection setup response indicating that the 
connection is to be completed by answering the data caU and initiating a 
connection to the specified data service provider; and 

to respond to a connection setup response indicating that the 
connection is not to be completed by initiating a busy indication; and 

the network controller being operable: 

to receive a connection setup request from any of the network 
access servers; 

*°^^^«^e^hether a quantity of network resources currently 
used by the data service provider specified in the connection setup request is 
less than an service quota assigned to the data service provider; and 

to send a connection setup response to the network access server 
which sent the connection setup request, the connection setup response 
xndacatmg that the requested connection is to be completed when the quantity 
of network resources currently used by the data service provider is less than 
the assi^ed service quota and the com^ection setup response indicating the 
requested connection is not to be completed when the quantity of network 
resources currently used by the data service provider is not less than the 
assigned service quota. 
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2. A system as defined in claim 1, wherein each network 
access server is operable: 

to detect terniination of data calls; and 

to send a connection releaise request to ihe network controller 
upon detection of termination of a data call. 

3. A network controller for use in a data access transport 
system comprising a plurality of network access servers connected to the 
network controller, the network controller comprising: 

means for receiving a connection setup request from any of the 
network access servers; 

means for determining whether a quantity of network resources 
currently used by the data service provider specified in the connection setup 
request is less them an service quota assigned to the data service provider; and 

means for sending a connection setup response to the network 
access server which sent the connection setup request, the connection setup 
response indicating that the requested connection is to be completed when the 
quantity of network resources currently used by the data service provider is 
less than the assigned service quota and the connection setup response 
indicating the requested connection is not to be completed when the quantity 
of network resources currently used by the data service provider is not less 
than the assigned service quota. 

4. : A network controller as defined in claim 3, further 

comprising: 

means for maintaining a count of active calls to each data service 
provider served by the data access transport system; 

means for maintaining a count of active calls served by each 
network gateway served by the data access transport system; and 

means for selecting a network gateway for completing a 
connection to a data service provider based on the counts of active calls served 
by each network gateway connected to the data service provider; 

the means for sending a connection setup response being 
responsive to tiie means for selecting a network gateway to send a connection 
setup response specifying the selected network gateway. 
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5. A network controUer as defined in claim 4, furtho- 
c^pmmg means for maintaining a record of tunnels currently c^^ 
behveen network access servers and network gateways, the means for 
selectmg a network gateway being operable to select a network gateway based 

^ecountso active calls served by eachnetwork gateway anLer^^^^^^^^ 
momently connected between network access servers and netwo^ 

6. A network controUer as defined in claim 4, further 
compnsmg means for recognizing call setup requests corresponding to 
segments of a MLP call, the means for selecting a network gLway for 
^mpletmg a connection to a data service provider being responsive to the 

ZTZ Tl^^"^^ corresponding to segments of a MLP 

caU to select the same network gateway for all segments of a MLP call. 

7. A network controller as defined in claim 3, further 
compnsmg means for recognizing call setup requests corresponding to data 

ca^lsrequmng 56 kbps service, the means for sendingaconnection setup 
response bemg responsive to the means for recognizing call setup requests 
correspondmg to data calls requiring 56 kbps service to send a connexion 
setup response indicating that 56 kbps service is required. 

com r • ^ controller as defined in claim 3, further 

means for deriving operational data from at least one of 
connecHon setup requests, connection setup responses, connection release 
requ^ts, connection release acknowledgements and error conditions detected 
by the network controUer; and «ecrea 

means for recording at least some of the derived operational data. 

9. A network controUer as defined in claim 4, further 

selectmg a network gateway responding to the means for flagging network 
gat^s^disabledbynotselectinganynetwo^^ 
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10. A network controller as defined in claim 9, wherein the 
means for flagging network gateways as disabled is responsive to receipt of a 
message from a network access server indicating a failure to.open a connection 
to a particular network gateway to flag that particular network gateway as 
disabled. 

11. A network controller as defined in claim 10, wherein the 
mecins for selecting a network gateway is responsive to receipt of the message 
indicating a failure to open a connection to a particular network gateway to 
select another network gateway for connection of the call. 

12. A network controller as defined in claim 3, further 
comprising means for flagging groups of directory numbers as disabled, each 
directory number group comprising at least one directory number, the means 
for sending a connection setup response being responsive to the means for 
flagging directory number groups as disabled to send connection setup 
responses indicating fliat connections are not to be completed in response to 
connection setup requests specifying directory numbers in directory number 
groups which are flagged as disabled. 

13. A network controller as defined in claim 3, further 
comprising means for flagging network access servers as disabled, the means 
for sending a connection setup response being responsive to the means for 
flagging network access servers as disabled to send connection setup 
responses indicating that connections eire not to be completed in response to 
connection setup requests sent by network access servers which are flagged as 
disabled. 

14. A network access server for use in a data access transport 
system comprising a network controller connected to the network access 
server, comprising: 

means for sending a connection setup request to the network 
controller on receipt of a data call before answering the data call, the 
connection setup request specifying a data service provider to which a 
connection is requested; 
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means for receiving a connection setup response from the network 
controUer, the connection setup response indicating whether the requested 
connection is to be completed; 

answering the data call and initiating a connection to 
the sp^ Aed date service provider in response to a connection setiip response 
mdicating that the connection is to be completed; and 

means for initiating a busy indication in response to a connection 
sehip response indicating that the connection is not to be completed. 

15. A network access server as defined in claim 14, further 

comprising: 

means for detecting termination of data caUs; and 
means for sending a connection release request to the network 
contiroller upon detection of termination of a data call. 

16. A network access server as defined in claim 14, wherein 
the means for initiating a connection to the specified data service provider 
mitiates a comiection via a network gateway specified in ti^e connection setiip 
response. 

17. A network access server as defined in claim U, further 
comprising means for sending a message the network controller upon faUure 
to complete a connection to a particular network gateway, the message 
specifymg the particular network gateway. 

18. A network access server as defined in claim 14, further 
comprising means responsive to a signal indicating that the network access 
server is d^bled to send a signal to an access network indicating that access 
channels of the network access server are unavailable for use. 

19. A network access server as defined in claim 18, further 
compnsmg means responsive to a signal indicating that the network access 

c^I'Tr"'"" r ^ ' *° ^ ""^'^^ ^^^-^''^ -^-^S access 

channels of the network access server are available for use. 
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20. A method for operating a data access transport system 
comprising a pltirality of network access servers and a network controller 
connected to the network access servers, the method comprising: 

sending a connection setup request from a network access server 
to the network controller on receipt of a data call before answering the data 
call, the connection setup request specif3ang a data service provider to v/hich a 
connection is requested; 

determining at the network controller whether a quantity of 
network resources currently used by the data service provider specified in the 
connection setup request is less than a service quota assigned to the data 
service provider; 

sending a connection setup response from tiie network controller 
to the network access server which sent the connection setup request, the 
connection setup response indicating that the requested connection is to be 
completed when the quantity of network resources currently used by the data 
service provider is less than the assigned service quota and die connection 
setup response indicating the requested connection is not to be completed 
when the quantity of network resources currently used by the data service 
provider is not less than die assigned service quota; 

responding at the network access server to a connection setup 
response indicating that the connection is to be completed by answering the 
data call and initiating a connection to the specified data service provider; and 

responding at the network access server to a connection setup 
response indicating that the connection is not to be completed by initiating a 
busy indication. 

21. A method as defined in claim 20, further comprising: 
detecting termination of a data ccill at a network access server; and 
sending a connection release request to the network controller 

upon detection of the termination. 

22. A method for operating a network controller for use in a 
data access transport system comprising a plurality of network access servers 
connected to the network controller, the method comprising: 

receiving a connection setup request from any of the network 
access servers; 
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detemuning whether a quantity of network resources currently 
used by the data service provider specified in the connection setup request is 
less than a service quota assigned to the data service provider; and 

sending a connection setup response to the network access server 
which sent the connection setup request, the connection setup response 
indicating that the requested connection is to be completed when the quantity 
of network resources currently used by the data service provider is less than 
the assigned service quota and the connection setup response indicating the 
requested connection is not to be completed when the quantity of network 
resources currently used by the data service provider is not less than the 
assigned service quota. 



23. A method as defined in claim 22, further comprising- 
maintaining a count of active calls to each data service provider 

served by the data access transport system; 

maintaining a count of active calls served by each network 
gateway served by the data access transport system; and 

selecting a network gateway for completing a connection to a data 
service provider based on the counts of active calls served by each network 
gateway connected to the data service provider; 

the step of sending a connection setup response comprising 
sendmg a connection setup response specifying the selected network gateway. 

24. A method as defined in claim 23, further comprising 
mamtaining a record of tunnels currently comtected between network access 
servers and network gateways, the step of selecting a network comprising 
selectmg a network gateway based on the counts of active calls served by each 
network gateway and the record of tunnels currently connected between 
network access servers and network gateways. 

25. A method as defined in claim 23, further comprising 
recognizing caU setup requests corresponding to segments of a MLP call, the 
step of selecting a network gateway for completing a connection to a data 
service provider comprising selecting the same network gateway for all 
segments of a MLP call. 



wo 98/54868 



PCT/CA98/00436 



- 29 - 

26. A mediod as defined in claim 22, further comprising 
recognizing call setup requests corresponding to data calls requiring 56 kbps 
service, the step of sending a connection setup response comprising sending a 
connection setup response indicating that 56 kbps service is required. 

27. A method as defined in claim 22, furdier comprising: 
deriving operational data from at least one of connection setup 

requests, connection setup responses, connection release requests, connection 
release acknowledgements and error conditions detected by the network 
controller; and 

recording at least some of the derived operational data. 

28. A method as defined in claim 22, further comprising 
flagging network gateways as disabled, the step of selecting a network 
gateway comprising not selecting any network gateway currently flagged as 
disabled. 

29. A mediod as defined in claim 22, furdier comprising 
flagging directory number groups as disabled, each directory nimiber group 
comprising at least one directory number, the step of sending a connection 
setup response comprising sending a comiection setup response indicating 
that a connection is not to be completed for any connection setup request 
specifying a directory number in a directory number group which is flagged 
as disabled. 

30. A method as defined in claim 22, further comprising 
flagging network access servers as disabled, the step of sending a connection 
setup response comprising indicating that connections are not to be completed 
in response to connection setup requests sent by network access servers which 
are flagged as disabled. 

31. A method for operating a network access server in a data 
access transport system comprising a network controller connected to the 
network access server, comprising: 
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a connection setup request to the network controller on 
receipt of a data call before answering the data call, the connection setup 
request specifying a data service provider to which a connection is requested; 

receiving a connection setup response from the network 
controUer, the connection setup response indicatiitg whether the requested 
connection is to be completed; 

data call arid initiating a connection to the specified 
data service provider in response to a connection setup response indicating 

that the coimection is to be completed; and 

initiating a busy indication in response to a connection setup 

response indicating that the connection is not to be completed. 

32. A method as defined in claim 31, further comprising: 
detecting termination of data calls; and 

sending a connection release request to the network controller 
upon detection of termination of a data call. 

33. A method as defined in claim 31, wherein the step of 
imtiatmg a connection to the specified data service provider comprises 
mitiatmg a connection via a network gateway specified in the connection 
setup response. 
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